Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 16, 2025, 6:05 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
206851 7.6 危険 GNOME Project
レッドハット
- Evince の PK フォントパーサにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2010-2640 2011-01-26 15:10 2011-01-5 Show GitHub Exploit DB Packet Storm
206852 5 警告 MODX - MODx Evolution におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-3930 2011-01-26 14:02 2011-01-26 Show GitHub Exploit DB Packet Storm
206853 7.5 危険 MODX - MODx Evolution における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-3929 2011-01-26 14:01 2011-01-26 Show GitHub Exploit DB Packet Storm
206854 9.3 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2010-4042 2011-01-26 13:28 2010-10-19 Show GitHub Exploit DB Packet Storm
206855 6.8 警告 Google - Linux 上で稼働する Google Chrome のサンドボックス実装におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-4041 2011-01-26 13:26 2010-10-19 Show GitHub Exploit DB Packet Storm
206856 9.3 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2010-4040 2011-01-26 13:23 2010-10-19 Show GitHub Exploit DB Packet Storm
206857 7.5 危険 Google - Linux 上で稼働する Google Chrome における脆弱性 CWE-DesignError
CWE-noinfo
CVE-2010-4039 2011-01-26 13:17 2010-10-19 Show GitHub Exploit DB Packet Storm
206858 4.3 警告 Google - Google Chrome の Web Sockets 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2010-4038 2011-01-26 13:12 2010-10-19 Show GitHub Exploit DB Packet Storm
206859 4.3 警告 Google - Google Chrome におけるポップアップブロッカーを回避される脆弱性 CWE-noinfo
情報不足
CVE-2010-4037 2011-01-26 13:10 2010-10-19 Show GitHub Exploit DB Packet Storm
206860 6.8 警告 Google - Google Chrome における URL をなりすまされる脆弱性 CWE-20
不適切な入力確認
CVE-2010-4036 2011-01-26 13:08 2010-10-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 17, 2025, 5:08 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257831 - microsoft windows_media_player Microsoft Windows Media Player (WMP) allows remote attackers to cause a denial of service (application crash) via a certain AIFF file that triggers a divide-by-zero error, as demonstrated by kr.aiff. CWE-189
Numeric Errors
CVE-2007-6236 2017-09-29 10:29 2007-12-5 Show GitHub Exploit DB Packet Storm
257832 - squid squid_web_proxy_cache The "cache update reply processing" functionality in Squid 2.x before 2.6.STABLE17 and Squid 3.0 allows remote attackers to cause a denial of service (crash) via unknown vectors related to HTTP heade… CWE-20
 Improper Input Validation 
CVE-2007-6239 2017-09-29 10:29 2007-12-5 Show GitHub Exploit DB Packet Storm
257833 - adobe flash_player Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0 does not sufficiently restrict the interpretation and usage of cross-domain policy files, which makes it easier for r… CWE-264
Permissions, Privileges, and Access Controls
CVE-2007-6243 2017-09-29 10:29 2007-12-20 Show GitHub Exploit DB Packet Storm
257834 - adobe flash_player Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0, when running on Linux, uses insecure permissions for memory, which might allow local users to gain privileges. CWE-264
Permissions, Privileges, and Access Controls
CVE-2007-6246 2017-09-29 10:29 2007-12-20 Show GitHub Exploit DB Packet Storm
257835 - apple mac_os_x
mac_os_x_server
The accept_connections function in the virtual private network daemon (vpnd) in Apple Mac OS X 10.5 before 10.5.4 allows remote attackers to cause a denial of service (divide-by-zero error and daemon… CWE-189
Numeric Errors
CVE-2007-6276 2017-09-29 10:29 2007-12-7 Show GitHub Exploit DB Packet Storm
257836 - redhat enterprise_linux
enterprise_linux_desktop
The IPsec implementation in Linux kernel before 2.6.25 allows remote routers to cause a denial of service (crash) via a fragmented ESP packet in which the first fragment does not contain the entire E… CWE-16
Configuration
CVE-2007-6282 2017-09-29 10:29 2008-05-8 Show GitHub Exploit DB Packet Storm
257837 - redhat enterprise_linux The default configuration for autofs 5 (autofs5) in some Linux distributions, such as Red Hat Enterprise Linux (RHEL) 4 and 5, does not specify the nodev mount option for the -hosts map, which allows… CWE-16
Configuration
CVE-2007-6285 2017-09-29 10:29 2007-12-21 Show GitHub Exploit DB Packet Storm
257838 - iptel serweb Multiple PHP remote file inclusion vulnerabilities in SerWeb 2.0.0 dev1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the (1) _SERWEB[configdir] parameter to load_lang… CWE-94
Code Injection
CVE-2007-6289 2017-09-29 10:29 2007-12-11 Show GitHub Exploit DB Packet Storm
257839 - iptel serweb Multiple directory traversal vulnerabilities in js/get_js.php in SERWeb 2.0.0 dev1 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) mod and (2) js parameters. CWE-22
Path Traversal
CVE-2007-6290 2017-09-29 10:29 2007-12-11 Show GitHub Exploit DB Packet Storm
257840 - mwopen e-commerce SQL injection vulnerability in leggi_commenti.asp in MWOpen 1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection
CVE-2007-6292 2017-09-29 10:29 2007-12-11 Show GitHub Exploit DB Packet Storm